Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The operating system must protect the confidentiality of transmitted information.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-219979 | SOL-11.1-060100 | SV-219979r958908_rule | Medium |
| Description |
|---|
| Ensuring the confidentiality of transmitted information requires the operating system take feasible measures to employ transmission layer security. This requirement applies to communications across internal and external networks. |
| STIG | Date |
|---|---|
| Solaris 11 SPARC Security Technical Implementation Guide | 2024-05-30 |
Details
| Check Text ( C-21689r371309_chk ) |
|---|
| All remote sessions must be conducted via encrypted services and ports. Ask the operator to document all configured external ports and protocols. If any unencrypted connections are used, this is a finding. |
| Fix Text (F-21688r371310_fix) |
|---|
| All remote sessions must be conducted via SSH and IPsec. Ensure that SSH and IPsec are the only protocols used. |